CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

exploitpack•added 2012/02/11 12:0 a.m.•9 views

Basic Analysis and Security Engine (BASE) 1.4.5 - adminindex.php?base_path Remote File Inclusion

Basic Analysis and Security Engine BASE 1.4.5 - adminindex.php?basepath Remote File Inclusion source: https://www.securityfocus.com/bid/51979/info BASE is prone to a security-bypass vulnerability and multiple remote file-include vulnerabilities. An attacker can exploit these issues to gain...

0.3AI score

Exploits0

exploitpack•added 2011/01/20 12:0 a.m.•10 views

Pixie CMS 1.0.4 - adminindex.php SQL Injection

Pixie CMS 1.0.4 - adminindex.php SQL Injection source: https://www.securityfocus.com/bid/45937/info Pixie is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker...

0.4AI score

Exploits0

exploitpack•added 2010/03/08 12:0 a.m.•22 views

KDPics 1.18 - adminindex.php Authentication Bypass

KDPics 1.18 - adminindex.php Authentication Bypass source: https://www.securityfocus.com/bid/38603/info KDPics is prone to a vulnerability that lets an attacker add an administrative user because it fails to adequately secure access to administrative functionality. This may allow the attacker to...

0.5AI score

Exploits0

exploitpack•added 2009/01/15 12:0 a.m.•11 views

w3bcms - adminindex.php SQL Injection

w3bcms - adminindex.php SQL Injection source: https://www.securityfocus.com/bid/33310/info The 'w3bcms' application is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacke...

8.6AI score

Exploits0

CVE•added 2008/04/30 3:0 p.m.•33 views

CVE-2008-2038

TurnKey Web Tools SunShop Shopping Cart 4.1.0 has multiple SQL injection vulnerabilities in admin/adminindex.php that allow remote authenticated administrators to execute arbitrary SQL commands via the (1) orderby and (2) sort parameters. This CVE entry notes provenance is unknown and details are...

6.5CVSS7.8AI score0.00354EPSS

Exploits0References3Affected Software1

Cvelist•added 2008/04/30 3:0 p.m.•10 views

CVE-2008-2038

Multiple SQL injection vulnerabilities in admin/adminindex.php in Turnkey Web Tools SunShop Shopping Cart 4.1.0 allow remote authenticated administrators to execute arbitrary SQL commands via the 1 orderby and 2 sort parameters. NOTE: the provenance of this information is unknown; the details are...

7.7AI score0.00354EPSS

Exploits0References3

exploitpack•added 2006/11/06 12:0 a.m.•22 views

iPrimal Forums - adminindex.php Change User Password

iPrimal Forums - adminindex.php Change User Password !perl http://ipigroup.org/downloads/forums.zip Bl0od3r Germany shoutzz to all members of dC3 crew ,matrixkiller,eddie14 special to str0ke use IO::Socket; if @ARGVnewProto="tcp",PeerAddr="$host",PeerPort="80" or die "Error"; print $sock "POST...

0.6AI score

Exploits0

CVE•added 2006/04/21 10:0 a.m.•39 views

CVE-2005-4787

Turnkey Web Tools SunShop Shopping Cart is affected by CVE-2005-4787 via endpoints that execute PHP’s phpinfo() (index.php, admin/index.php, admin/adminindex.php), potentially exposing sensitive information. The root cause is the direct invocation of phpinfo() in these pages, enabling information...

5CVSS6.8AI score0.00585EPSS

Exploits1References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by